136 lines
3.3 KiB
Plaintext
136 lines
3.3 KiB
Plaintext
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
|
|
!switch-vwd-1,switch-vwd-2
|
|
conf t
|
|
vlan 809
|
|
name oracle
|
|
end
|
|
wr mem
|
|
|
|
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
|
|
!switch-vwd-sp1, switch-vwd-sp2
|
|
conf t
|
|
vrf definition oracle
|
|
rd 65000:1009
|
|
address-family ipv4
|
|
exit-address-family
|
|
|
|
vlan 809
|
|
name oracle
|
|
|
|
ip access-list standard routes2oracle
|
|
permit # routes acl
|
|
|
|
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
|
|
!switch-vwd-sp1
|
|
conf t
|
|
|
|
interface vlan809
|
|
description oracle
|
|
vrf forwarding oracle
|
|
ip address 10.120.2.2 255.255.255.0
|
|
|
|
int Gi1/0/9
|
|
description Cust: VWD-Transit (oracle)
|
|
# vrf definition oracle
|
|
# ip address 192.168.239.25 255.255.255.254
|
|
# switchport mode trunk|access
|
|
# switchport access vlan ...
|
|
# switchport trunk allowed vlan ...
|
|
# channel-group X mode on|active
|
|
|
|
int Vlan1900
|
|
description Cust: VWD-Transit (oracle)
|
|
vrf definition oracle
|
|
ip address 192.168.239.25 255.255.255.254
|
|
|
|
router bgp 65148
|
|
address-family ipv4 vrf oracle
|
|
bgp router-id auto-assign
|
|
redistribute static
|
|
neighbor 10.120.2.1 remote-as 65148
|
|
|
|
neighbor 10.120.2.3 remote-as 65159
|
|
neighbor 10.120.2.3 local-as 65159
|
|
|
|
neighbor 192.168.239.25 remote-as 31898
|
|
neighbor 192.168.239.25 local-as 65159
|
|
|
|
distribute-list routes2oracle
|
|
exit-address-family
|
|
|
|
ip route vrf oracle # static routes 1
|
|
|
|
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
|
|
!switch-vwd-sp2
|
|
conf t
|
|
|
|
interface vlan809
|
|
description oracle
|
|
vrf forwarding oracle
|
|
ip address 10.120.2.3 255.255.255.0
|
|
|
|
int Gi1/0/9
|
|
description Cust: VWD-Transit (oracle)
|
|
# vrf definition oracle
|
|
# ip address xxx zzz
|
|
# switchport mode trunk|access
|
|
# switchport access vlan ...
|
|
# switchport trunk allowed vlan ...
|
|
# channel-group X mode on|active
|
|
|
|
int Vlan1900
|
|
description Cust: VWD-Transit (oracle)
|
|
vrf definition oracle
|
|
ip address xxx zzz
|
|
|
|
router bgp 65148
|
|
address-family ipv4 vrf oracle
|
|
bgp router-id auto-assign
|
|
redistribute static
|
|
neighbor 10.120.2.1 remote-as 65148
|
|
|
|
neighbor 10.120.2.2 remote-as 65159
|
|
neighbor 10.120.2.2 local-as 65159
|
|
|
|
neighbor yyy remote-as 31898
|
|
neighbor yyy local-as 65159
|
|
|
|
distribute-list routes2oracle
|
|
exit-address-family
|
|
|
|
ip route vrf oracle # static routes 2
|
|
|
|
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
|
|
!asa-vwd-1
|
|
conf t
|
|
interface Port-channel2.809
|
|
vlan 809
|
|
nameif oracle
|
|
security-level 100
|
|
ip address 10.120.2.1 255.255.255.0
|
|
|
|
access-list oracle_access_in extended permit icmp any any
|
|
access-list oracle_access_in extended deny ip any any
|
|
|
|
no monitor-interface oracle
|
|
|
|
access-group oracle_access_in in interface oracle
|
|
|
|
access-list oracle_access_in extended permit icmp any any
|
|
access-list oracle_access_in extended deny ip any any
|
|
|
|
router bgp 65148
|
|
bgp log-neighbor-changes
|
|
address-family ipv4 unicast
|
|
neighbor 10.120.2.2 remote-as 65148
|
|
neighbor 10.120.2.2 description oracle primary weight 200
|
|
neighbor 10.120.2.2 activate
|
|
neighbor 10.120.2.2 next-hop-self
|
|
neighbor 10.120.2.2 weight 200
|
|
neighbor 10.120.2.3 remote-as 65148
|
|
neighbor 10.120.2.3 description oracle secondary weight 100
|
|
neighbor 10.120.2.3 activate
|
|
neighbor 10.120.2.3 next-hop-self
|
|
neighbor 10.120.2.3 weight 100
|
|
|
|
|